SafeInsights Create Key Pairs

For Members, there are 2 RSA key pairs required for their secure enclave, the Member Enclave Management key pair and the Reviewer key pair

Member Enclave Management Key Pair

The Member Enclave Management key pair is how the applications deployed in a Member's enclave will authenticate with the SafeInsights Management App. Only one key pair needs to be generated per member enclave. To generate the key pair, open a terminal window and execute:

openssl genpkey -algorithm RSA -out private_key.pem -pkeyopt rsa_keygen_bits:4096
openssl rsa -pubout -in private_key.pem -out public_key.pem

Store the private key securely. It will need to be deployed with each of the applications in a member enclave: Setup App, Trusted Output App, Test Container. Please refer to the Implementation Guide on how to deploy this key with the apps.

Member Review Key Pair

The Review key pair is generated for each member user account to enable them to decrypt a study's analysis result for review. Today, the Management App will generate the key pair for each member on their initial login, so no commands to be run. The Member will need to securely store their private key in their password manager.